Technical data

ManualsBrandsBrocade Communications Systems ManualsHome Theater ServerServerIron ADX 12.4.00

151

152

153

154

155

156

157

158

159

160

142 ServerIron ADX Administration Guide

53-1002434-01

Overview

• A resource in a context cannot be deleted if the user is in a different context at the time.

• One default context can be configured for a user if the user has privileges for more than one

context.

For simplicity of the configuration, the super user can choose to create some role templates and

associate the template with a set of privileges (available privileges are the same as the user level

configurations). A user can then be associated with one of the templates, in which case, the user is

granted privileges in the template. Then user level privileges can be configured to overwrite the

privileges in the template:

• If no privilege is granted for an administrative domain at both the template and user levels, the

user has no privileges for the domain.

• If a privilege is granted both at the template and user levels, user level privilege takes

precedence.

• If a privilege is granted only in at the template, the user inherits the privilege from the template.

• If a privilege is granted only at the user level, the user has the configured privileges.

Similarly, a default context can be associated with a template. If default context is configured at

both template and user level, the user level configuration takes precedence. If a user is not

associated with any templates or roles, he has no privileges. The super user can also create a

default template with a set of privileges, which is assigned to anyone who does not have templates

or privileges assigned.

The following commands can only be executed by super users:

• Copy

• Boot

• Reload/Reload-yes

• asm

• Rconsole (level-1 users will have no access to BP)

• Show server debug

• Show users

The following items can only be created, deleted, or configured by the super users:

• Username

• Context

• Role template

Display of the following commands does not include information for contexts not viewable by the

current user:

• Show run

• Show startup

• Write term

• Show server real

• Show server virtual

• Show server bind

• Show server traffic

• Show server session